Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/5wk2YloEW5RBrPxOJUefitsICGs.roa
File: 5wk2YloEW5RBrPxOJUefitsICGs.roa (raw, json)
Hash identifier: efSmrXBE27AVLCUZwmvI45vOO1brG87ldmOxtHa5z4I=
Subject key identifier: E7:09:36:62:5A:04:5B:94:41:AC:FC:4E:25:47:9F:8A:DB:08:08:6B
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 02BD
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/5wk2YloEW5RBrPxOJUefitsICGs.roa
Signing time: Sun 07 Feb 2021 13:02:52 +0000
ROA not before: Sun 07 Feb 2021 13:02:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 103.152.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 701 (0x2bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Feb 7 13:02:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E70936625A045B9441ACFC4E25479F8ADB08086B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ee:69:f2:19:90:04:0d:9b:09:48:06:7d:dd:
e7:bf:7d:5d:d3:f1:e3:0f:76:13:b7:fc:5c:7e:5e:
ed:a8:78:88:e5:da:97:14:a0:22:7c:1d:0b:aa:17:
ec:e1:38:da:91:eb:b8:a8:1f:2d:6a:9d:75:c5:91:
7f:fd:79:99:03:99:47:b1:47:26:ed:47:e0:2b:0d:
db:a9:2a:94:47:87:31:c0:40:13:d9:63:00:91:45:
5f:38:42:4e:0e:d1:31:22:bc:f1:28:87:c2:56:91:
20:65:52:17:ed:9e:f2:c1:d3:ac:20:7a:af:45:d5:
67:fb:29:8e:f8:5d:de:8a:3c:29:22:16:b3:63:42:
b2:c3:9c:c4:35:e2:4a:e9:da:ed:85:e3:7a:f7:05:
43:1a:2f:ac:34:9b:0f:80:a7:f9:bd:11:cc:cb:36:
f5:83:cc:9d:c9:5a:84:e0:a3:2a:ae:ca:63:e6:e1:
dc:9c:32:3e:45:24:06:5c:a6:4e:d0:38:c5:fe:20:
8f:b4:49:47:66:4a:33:dd:e5:dc:7f:50:66:dd:ee:
9c:2c:40:22:ce:87:ca:93:0e:f7:c3:78:1a:89:da:
d7:13:1d:26:f9:7a:b2:fa:f8:7b:18:8d:c3:b5:f4:
c9:af:a6:4d:5a:45:c2:b0:6e:08:e3:e0:12:2f:41:
23:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:09:36:62:5A:04:5B:94:41:AC:FC:4E:25:47:9F:8A:DB:08:08:6B
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/5wk2YloEW5RBrPxOJUefitsICGs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.150.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:25:28:10:9e:2e:f2:02:c8:67:96:6e:b4:9e:a0:db:e6:8b:
5c:41:9d:d6:37:9f:36:fc:b0:36:36:9e:b0:e5:5c:a3:15:28:
83:d4:b2:8c:1c:5b:5e:b1:1f:c8:0d:07:74:ef:d2:16:a1:b2:
b1:3c:76:58:7e:1e:f6:9f:6e:35:01:f0:c9:26:8d:ea:04:c4:
08:73:1e:38:87:e2:56:2e:a7:61:12:8f:1c:48:66:e8:16:3f:
d9:c5:c1:bc:7e:6a:8d:7d:3b:79:72:84:76:e3:07:92:91:0a:
67:b7:be:33:6d:6a:e5:8f:a6:93:4a:e8:d3:86:31:a3:db:78:
8a:0d:b3:36:1b:88:84:5d:a2:2e:5e:9e:e6:ba:bb:7c:52:64:
8e:04:30:13:03:17:d0:58:d5:18:d2:bf:da:96:da:ef:53:3f:
34:45:27:6a:a3:01:62:b6:97:83:34:5a:e7:29:75:82:0f:ae:
c1:30:dc:6a:94:8f:f4:74:15:ab:a7:2f:c2:ad:8b:80:37:99:
11:ed:b0:8f:6e:5d:3e:50:a9:7c:fa:92:75:db:ce:97:13:af:
75:4f:0b:a9:4a:3d:46:53:89:2e:2a:4e:35:fa:d3:90:7b:5b:
a6:05:e0:7b:18:9d:37:fe:c3:52:90:1e:6f:9d:b9:2a:ee:ad:
97:30:fe:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org